Releases: trendmicro/cloudone-container-security-helm
Releases · trendmicro/cloudone-container-security-helm
2.4.3
Changelog
[2.4.3] - 2024-11-13
Features
- Add trusted images evaluation in admission controller
- Add trusted images evaluation in oversight controller
- Add malware scanning feature
Bug Fixes
- Fixed issue where scan-controller and admission-controller crashed
- Fixed issue where scout sent runtime security event whose pod ID was
- Fixed missing option on Fargate instance
- Fixed issue syncing custom rulesets without labels
Upgrade instructions
To upgrade, use the following command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.4.3.tar.gz
2.4.2
Changelog
[2.4.2] - 2024-10-23
Features
- CIS Compliance Scan for OpenShift Added support for CIS compliance scans on Red Hat OpenShift
- Log Enhancement: Added support for logging configuration and Falco output channel toggles in helm overrides
Bug Fixes
- Reduced image size and updated dependencies in container images
Upgrade instructions
To upgrade, use the following command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.4.2.tar.gz
2.4.1
Changelog
[2.4.1] - 2024-10-10
Features
- Policy Management: Introduced "Policy as Code" for managing container security policy resources with Policy Operator. Learn more
- Runtime Support: Added support for kernels without raw tracepoint
Bug Fixes
- Resolved issue with helm template defaults for boolean values
- Reduced log size for oversight controller
Full Changelog: 2.4.0...2.4.1
Upgrade instructions
To upgrade, use the following command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.4.1.tar.gz
2.4.0
Changelog
[2.4.0] - 2024-09-25
Features
- Runtime Security - Upgrade Falco to 0.37.1
- Add appArmourProfile support in scout for k8s 1.30+
- Support NOPROXY configuration in values
- Update go version to 1.23.1
Bug Fixes
- Fix logger error in workload operator
Full Changelog: 2.3.47...2.4.0
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.4.0.tar.gz
2.3.47
Changelog
- Add CIS compliance scan feature for k8s clusters for Trend Vision One Container Security customers
- Patch vulnerability in runtime scanner
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.47.tar.gz
2.3.46
Changelog
- Shorten inventory full sync period
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.46.tar.gz
2.3.45
Changelog
- Fix Falco event missing issue when host pid is true
- Enhance scout error handling
- Upgrade open source tool version
- Fix OpenShift helm uninstall error, allow creation of scan-job in privileged namespace
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
[https://github.com/trendmicro/cloudone-container-security-helm/archive/${RELEASE}.tar.gz](https://github.com/trendmicro/cloudone-container-security-helm/archive/$%7BRELEASE%7D.tar.gz)
2.3.44
Changelog
- Fixed the issue where scan-controller crashed when scan-job was deleted
- Fixed the issue where excluding the namespace does not work as expected in fargate environment
- Added excluded namespace and trusted images to inventory snapshot
- Fixed the issue where k8s-metacollector crashed
- Used chart appVersion as application version in components
- Upgraded dependencies
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.44.tar.gz
2.3.43
Changelog
- Fix error marshalling event due to invalid UTF-8 characters in falco
- Fix workload-operator crash on pod update due to index out of range
- Fix helm upgrade errors when using the set option for values
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.43.tar.gz
2.3.42
Changelog
- Fixed scan-job permission denied error on generating SBOM from directories with creator only permission.
Upgrade instructions
Sample upgrade command:
helm upgrade \
--values overrides.yaml \
--namespace trendmicro-system \
trendmicro \
https://github.com/trendmicro/cloudone-container-security-helm/archive/2.3.42.tar.gz